Private Cloud

Hosted/managed by Vodafone–provides ability to use self-service portal to manage virtual compute, storage, networking services running on dedicated physical infrastructure. Virtual machines can be created within minutes. This is our dedicated public sector cloud service - connects you to your own private network and/or core government networks, including PSN.

Framework

Service ID

Contact

Service scope

The service is provided out of Uxbridge, Swindon, Leeds, US, Singapore, Hong-Kong DC Datacentres.There is a pre-defined catalogue of service requests; minimal flexibility.Pre-defined supplier developed API.Pre-defined Operating Systems, no customer provided images.Minimum size entry for Private Cloud of 4 compute units.

System requirements

Internet access for connectivity to the Self-Service Portal.

Access to infrastructure through Internet/MPLS connectivity (Vodafone can provide).

User support

User support

Email or online ticketing support

Email or online ticketing

Support response times

Severity Level 4, Non-Service Affecting, but requiring some investigation or corrective action including information requests are responded to via the Service Desk on a normal business working hours basis (9am to 5pm). The Service desk team have a target to answer calls within 20 seconds 90% of the time.

Onboarding and offboarding

Onboarding and offboarding

Getting started

Two phase approach with Go-live taking you through the service and handover the solution. A Delivery Handbook and Operations Handbook is provided covering Service desk, self-service,Admin tools, Reporting & Billing.Early Life Support phase, for the first week from go-live Vodafone are available to build your confidence and knowledge of the solution.

Service documentation

Yes

Documentation formats

PDF

End-of-contract data extraction

Customers can extract their data over the Network connection into the Vodafone Private Cloud Platform or alternatively Vodafone can provide a range of professional services for data extraction.

End-of-contract process

Exit charges may apply.

Using the service

Using the service

Web browser interface

Yes

Using the web interface

Users can provision virtual compute, storage and software defined networking through the portal, which provides a catalogue of standardised services which can be provisioned within minutes. The portal can be used to also managed those resources post provisioning allowing for the scaling up in line with business demand.

Web interface accessibility standard

None or don’t know

How the web interface is accessible

N/a

Web interface accessibility testing

N/a

API

Yes

What users can and can't do using the API

Using the API customers can place requests for the service catalogue items available on Private Cloud using their internal systems.

Both Managed and Unmanaged Virtual Machines can be backed up via Vodafone’s Data Protection service. Image-based backups are deployed as standard, however file-based backups, providing more granular selection and control, are available for Managed Virtual Machines. Managed Virtual Machines also have their Operating Systems backed up (and restored, if required) as part of the standard service.You can select backup policies for both compressible data, thereby benefiting from a lower cost tariff as data is de-duplicated or uncompressible data, with a slightly higher cost tariff in which data is encrypted and cannot be de-duplicated.

Datacentre setup

Multiple datacentres with disaster recovery

Scheduling backups

Users schedule backups through a web interface

Backup recovery

Users can recover backups themselves, for example through a web interface

Data-in-transit protection

Data-in-transit protection

Data protection between buyer and supplier networks

Private network or public sector network

Data protection within supplier network

IPsec or TLS VPN gateway

Availability and resilience

Availability and resilience

Guaranteed availability

99.90%

Approach to resilience

Each of the Vodafone data centres has resilient, high bandwidth connectivity to our Internet backbone over Vodafone fibre, as well as being connected to our Multi-Service Platform next-generation network. This enables the Flexible Comptuing for Government solution to be accessed over your WAN via the MPLS network services such as PSN(P), Ethernet Wireline and other bandwidth products.

Outage reporting

Customers will be provided with monthly service performance reports against Key Performance Indicators. This will include a summary of monthly service subscriptions by application, and measurement of actual performance against SLA terms.

Identity and authentication

Identity and authentication

User authentication

Username or password

Access restrictions in management interfaces and support channels

Username on Password – via HTTPs or Vsphere Client only from basion hosts (Limited Access) withing the management network (segregated network) that have no access to the outside.

Operational security

Operational security

Configuration and change management standard

Supplier-defined controls

Configuration and change management approach

Formal management responsibilities and procedures within Vodafone are in place to ensure satisfactory control of all changes. When changes are made, an audit log containing all relevant information is retained on the Vodafone change management system. Changes to operational systems are only made when there is a valid business reason to do so, such as an increase in the risk to the system.

Vulnerability management type

Supplier-defined controls

Vulnerability management approach

Vulnerability scanning is performed by industry standard a vulnerability management platform. Governance is in place to ensure that appropriate patching and/or remedial action is reviewed and implemented according to the severity and business impact of the vulnerability.

Protective monitoring type

Supplier-defined controls

Protective monitoring approach

Vodafone has logging and monitoring capabilities in place along with appropriate storage of log data. The monitoring capability and events are managed and stored within the SIEM solution. The SIEM solution has been built in line with GPG13 DETER.

Incident management type

Supplier-defined controls

Incident management approach

Incident management processes are in line with ITIL best practice, and integrated with event, problem and change management processes.

Secure development

Secure development

Approach to secure software development best practice

Conforms to a recognised standard, but self-assessed

Separation between users

Separation between users

Virtualisation technology used to keep applications and users sharing the same infrastructure apart

Yes

Who implements virtualisation

Supplier

Virtualisation technologies used

VMware

How shared infrastructure is kept separate

This is a Private Cloud designed and dedicated to cater for one organisation only.